CVE-2024-43024

Name of the Vulnerable Software and Affected Versions RWS MultiTrans versions 7.0.23324.2 and earlier

Description The issue allows attackers to execute arbitrary web scripts or HTML via a crafted payload, due to multiple stored cross-site scripting (XSS) vulnerabilities. This enables attackers to potentially steal user data or take control of user sessions.

Recommendations For versions 7.0.23324.2 and earlier, update to a version later than 7.0.23324.2 to resolve the issue. At the moment, there is no information about a newer version that contains a fix for this vulnerability.